[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kde-commits
Subject:    kdeutils/ark [INSECURITY]
From:       Lubos Lunak <l.lunak () kde ! org>
Date:       2002-12-05 18:46:34
[Download RAW message or body]

CVS commit by lunakl: 

Maximum size for sscanf().


  M +3 -3      compressedfile.cpp   1.6 [INSECURITY]


--- kdeutils/ark/compressedfile.cpp:1.5	Tue Dec  3 12:48:55 2002
@@ -1,6 +1,6 @@
 /*
 
-  $Id: compressedfile.cpp,v 1.5 2002/12/03 11:48:55 waba Exp $
+  $Id: compressedfile.cpp,v 1.6 2002/12/05 18:46:34 lunakl Exp $
 
     ark: A program for modifying archives via a GUI.
 
@@ -211,8 +211,8 @@
       char filename[4096];
 
       FILE *readHandle = popen(QFile::encodeName(command), "r");
-      fscanf(readHandle, "%[-A-Za-z:0-9_+-. ]", line);
-      sscanf(line, "%[-drwxst] %[0-9] %[0-9.a-zA-Z_] %[0-9.a-zA-Z_] %[0-9] \
%12[A-Za-z0-9: ]%1[ ]%[^\n]", columns[0], columns[5], +      fscanf(readHandle, \
"%4095[-A-Za-z:0-9_+-. ]", line); +      sscanf(line, "%79[-drwxst] %79[0-9] \
%79[0-9.a-zA-Z_] %79[0-9.a-zA-Z_] %79[0-9] %12[A-Za-z0-9: ]%1[ ]%79[^\n]", \
columns[0], columns[5],  columns[1], columns[2], columns[3],
 	     columns[4], columns[6], filename);
 


[prev in list] [next in list] [prev in thread] [next in thread]